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Period for Reply 



A SHORTENED STATUTORY PERIOD FOR REPLY IS SET TO EXPIRE 3 MONTH(S) OR THIRTY (30) DAYS, 
WHICHEVER IS LONGER, FROM THE MAILING DATE OF THIS COMMUNICATION. 

- Extensions of time may be available under the provisions of 37 CFR 1 .136(a). In no event, however, may a reply be timely filed 
after SIX (6) MONTHS from the mailing date of this communication. 

- If NO period for reply is specified above, the maximum statutory period will apply and will expire SIX (6) MONTHS from the mailing date of this communication. 

- Failure to reply within the set or extended period for reply will, by statute, cause the application to become ABANDONED (35 U.S.C. § 133). 
Any reply received by the Office later than three months after t he mailing date of this communication, even if timely filed, may reduce any 
earned patent term adjustment. See 37 CFR 1.704(b). 

Status 

1)S Responsive to communication(s) filed on 3/10/2004 . 
2a)D This action is FINAL. 2b)E3 This action is non-final. 

3) D Since this application is in condition for allowance except for formal matters, prosecution as to the merits is 

closed in accordance with the practice under Ex parte Quay/e, 1935 CD. 11, 453 O.G. 213. 

Disposition of Claims 

4) ^ Claim(s) 1-40 is/are pending in the application. 

4a) Of the above claim(s) is/are withdrawn from consideration. 

5) Q Claim(s) is/are allowed. 

6) S Claim(s) 1-40 is/are rejected. 

7) D Claim(s) is/are objected to. 

8) D Claim(s) are subject to restriction and/or election requirement. 

Application Papers 

9) D The specification is objected to by the Examiner. 

10) 13 The drawing(s) filed on 10 March 2004 is/are: a)^ accepted or b)D objected to by the Examiner. 

Applicant may not request that any objection to the drawing(s) be held in abeyance. See 37 CFR 1.85(a). 
Replacement drawing sheet(s) including the correction is required if the drawing(s) is objected to. See 37 CFR 1.121(d). 

1 1) D The oath or declaration is objected to by the Examiner. Note the attached Office Action or form PTO-152. 

Priority under 35 U.S.C. § 119 

12) D Acknowledgment is made of a claim for foreign priority under 35 U.S.C. § 119(a)-(d) or (f). 
a)D All b)D Some * c)D None of: 

1 .□ Certified copies of the priority documents have been received. 

2. D Certified copies of the priority documents have been received in Application No. . 

3. Q Copies of the certified copies of the priority documents have been received in this National Stage 

application from the International Bureau (PCT Rule 17.2(a)). 
* See the attached detailed Office action for a list of the certified copies not received. 
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DETAILED ACTION 
Claim Rejections - 35 USC §112 

1 . The following is a quotation of the second paragraph of 35 U.S.C. 112: 

The specification shall conclude with one or more claims particularly pointing out and distinctly 
claiming the subject matter, which the applicant regards as his invention. 

Claim(s) 30 - 34 are rejected under 35 U.S.C. 1 12, second paragraph, as being indefinite for 

failing to particularly point out and distinctly claim the subject matter which applicant regards as 

the invention. The term "stored information," is vague and indefinite, one would not know if 

"stored information," is first data or second data or data in general. 

Claim Rejections - 35 USC § 103 

2. The following is a quotation of 35 U.S.C. 103(a) which forms the basis for all 
obviousness rejections set forth in this Office action: 

(a) A patent may not be obtained though the invention is not identically disclosed or described as set 
forth in section 102 of this title, if the differences between the subject matter sought to be patented and 
the prior art are such that the subject matter as a whole would have been obvious at the time the 
invention was made to a person having ordinary skill in the art to which said subject matter pertains. 
Patentability shall not be negatived by the manner in which the invention was made. 

Claim(s) 1 - 34 are rejected under 35 U.S.C. 103(a) as being unpatentable over Venkataramappa 

(US 2003/0188193 Al) in view of Zhang et al. (US 7036142 Bl). Both Venkataramappa and 

Zhang are references cited in the applicant's information Disclosure Statement. 

Venkataramappa discloses a client that requests services from a first network server and a 
second network server and any subsequent network server in the network, Paragraph: 0054 & 
0059 & 0060 & 0061. The client is authenticated by a first network server, the first network 
server sends a request to the KDC (i.e. central server of Blinn) server, Paragraph: 0055. The 
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KDC is made up of a Kerberos authentication server and a TGS (ticket granting service), 
Paragraph: 0053. The KDC allows the user or client to sign on only once, without having to sign 
on multiple times, the TGT and SSO token allows the second server or other servers to recognize 
which client or user has been authenticated before, Paragraph: 0057 & 0058 & 0059, and will not 
request that the user sign on again when requesting service or content from other or different 
servers on the network, Paragraphs: 0054 & 0067. 

Venkataramappa does not appear to explicitly disclose first and second servers are in different 
domains. 

However, Zhang discloses single sign on users or subscribers to access both public and private 
domains when requesting content or service for the network server, Col 5, lines 30 - 51 . 

Venkataramappa and Zhang are analogous art because they are from the "same field of 
endeavor," allow a user to be authenticated and access multiple servers through a "single sign 
on" protocol. 

At the time of the invention, it would have been obvious to one of ordinary skill in the art, 
having the teachings of Venkataramappa and Zhang before him or her, to modify a client that 
requests services from a first network ser/er and a second network server and any subsequent 
network server in the network, Paragraph: 0054 & 0059 & 0060 & 0061 . The client is 
authenticated by a first network server, the first network server sends a request to the KDC (i.e. 
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central server of Blinn ) server, Paragraph: 0055. The KDC is made up of a authentication server 
and a TGS (ticket granting service), Paragraph: 0053. The KDC allows the user or client to sign 
on only once, without having to sign on multiple times, the TGT and SSO token allows the 
server or servers to recognize which client or user has been authenticated before, Paragraph: 
0057 & 0058 & 0059 and will not request that the user sign on again, Paragraph 0054 & 0067 of 
Venkataramappa to include the authentication to access multiple domains, Col 5, lines 30 - 51 of 
Zhang. 

The suggestion/motivation for doing so would have been to allow a user to a "single sign on," 
once and allowed access to multiple servers in multiple domains without having to re- 
authenticate again, Col. 5, lines 30-67 & Col. 7, lines 38 - 67. 

Therefor it would have been obvious to combine Zhang with Venkataramappa to obtain the 
invention as specified in the instant claim(s). 

Claim(s) 35 - 40 are rejected under 35 USC 103 (a) as being obvious over Venkataramappa (US 
2003/0188193 Al) in view of Stanko (US PGPUB# 20050074126). Both Venkataramappa and 
Stanko are references cited in the applicant's information Disclosure Statement. 

Venkataramappa discloses a client that requests services from a first network server and a second 
network server and any subsequent network server in the network, Paragraph: 0054 & 0059 & 
0060 & 0061 . The client is authenticated by a first network server, the first network server sends 
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a request to the KDC (i.e. central server of Blinn) server, Paragraph: 0055. The KDC is made up 
of a Kerberos authentication server and a TGS (ticket granting service), Paragraph: 0053. The 
KDC allows the user or client to sign on only once, without having to sign on multiple times, the 
TGT and SSO token allows the second server or other servers to recognize which client or user 
has been authenticated before, Paragraph: 0057 & 0058 & 0059, and will not request that the 
user sign on again when requesting service or content form other or different servers on the 
network, Paragraphs: 0054 & 0067. 

Venkataramappa does not appear to explicitly disclose a computer readable medium that 
executes a client that requests services from a first network server and a second network server 
and any subsequent network server in the network, the client is authenticated by a first network 
server, the first network server sends a request to the KDC (i.e. central server of Blinn) server 
which is made up of a Kerberos authentication server and a TGS (ticket granting service), the 
KDC allows the user or client to sign on only once, without having to sign on multiple times, the 
TGT and SSO token allows the server or servers to recognize which client or user has been 
authenticated before, and will not request that the user sign on again. 

However, Stanko discloses a computer readable medium that allows a user through a client 
machine to be authenticated by an authentication server for access to a secure server that will 
provide content to the client or users request, Paragraph: 0042 & 0078. The user will only have 
to be authenticated once by the authentication server, to be allowed access to other secured 
servers on the network, Paragraph: 0050. This is possible by the fact that a authentication ticket 
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is stored on both a the client and the authentication server to which other secured servers have 
access to on the network, Paragraph: 0048 & 0049 & 0050. 

Venkataramappa and Stanko are analogous art because they are from the "same field of 
endeavor," which is the field of authenticating a user or client once, with a proof of the 
authentication stored on the client and the content server and the authentication authority, which 
will allow the user or client subsequent access to plurality of other content servers on the 
network without having to be re-authenticated again. 

At the time of the invention, it would have been obvious to one of ordinary skill in the art, 
having the teachings of Venkataramappa and Stanko before him or her, to modify a client that 
requests services from a first network server and a second network server and any subsequent 
network server in the network, Paragraph: 0054 & 0059 & 0060 & 0061 . The client is 
authenticated by a first network server, the first network server sends a request to the KDC (i.e. 
central server of Blinn) server, Paragraph: 0055. The KDC is made up of a Kerberos 
authentication server and a TGS (ticket granting service), Paragraph: 0053. The KDC allows the 
user or client to sign on only once, without having to sign on multiple times, the TGT and SSO 
token allows the second server or other servers to recognize which client or user has been 
authenticated before, Paragraph: 0057 & 0058 & 0059, and will not request that the user sign on 
again when requesting service or content form other or different servers on the network, 
Paragraphs: 0054 & 0067 of Venkataramappa to include a computer readable medium that 
allows a user through a client machine to be authenticated by an authentication server for access 
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to a secure server that will provide content to the client or users request, Paragraph: 0042 & 
0078. The user will only have to be authenticated once by the authentication server, to be 
allowed access to other secured servers on the network, Paragraph: 0050. This is possible by the 
fact that a authentication ticket is stored on both a the client and the authentication server, 
Paragraph: 0048 & 0049 & 0050 of Stanko. 

The suggestion/motivation for doing so would have been allowing a user or client to access a 
vast array of information or content from a variety of sources in a network with out having to 
authenticate numerous times when the user wants to request another service from a different 
content or service provider on the network, Paragraphs: Background: 0002 - 0013. 

Therefor it would have been obvious to combine Stanko with Venkataramappa to obtain the 
invention as specified in the instant claim(s). 

Any inquiry concerning this communication or earlier communications from the 
examiner should be directed to Dant B. Shaifer - Harriman whose telephone number is 
571-272-7910. The examiner can normally be reached on Monday - Thursday: 8:00am 
-5:30pm Alt. Fridays off. 

If attempts to reach the examiner by telephone are unsuccessful, the examiner's 
supervisor, Kambiz Zand can be reached on (571 ) 272-381 1 . The fax phone number 
for the organization where this application or proceeding is assigned is 571-273-8300. 
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Information regarding the status of an application may be obtained from the 
Patent Application Information Retrieval (PAIR) system. Status information for 
published applications may be obtained from either Private PAIR or Public PAIR. 
Status information for unpublished applications is available through Private PAIR only. 
For more information about the PAIR system, see http://pair-direct.uspto.gov. Should 
you have questions on access to the Private PAIR system, contact the Electronic 
Business Center (EBC) at 866-217-9197 (toll-free). If you would like assistance from a 
USPTO Customer Service Representative or access to the automated information 
system, call 800-786-9199 (IN USA OR CANADA) or 571-272-1000. 




